Engineering Manager, Cloud Security

Skills

About the Role

You will lead a team of cloud security engineers responsible for securing AWS and Kubernetes infrastructure end-to-end. You will design and implement Zero Trust architectures, harden critical services, and build automated guardrails using infrastructure as code and policy as code. You will act as Incident Commander for high-severity security incidents, drive the cloud and container security roadmap, embed security into CI/CD and service architectures, and collaborate with Platform, SRE, Product, Compliance, Risk, and Legal to maintain and improve security posture. You will also participate in headcount planning, hiring, and mentorship to grow the team and promote security education and documentation across the organization.

Requirements

• 8+ years of engineering experience including hands-on security engineering work on cloud or application security
• 2–3 years of experience as an engineering manager leading security or infrastructure teams
• Proven experience securing production AWS environments at scale including AWS Organizations, IAM, SCPs, VPC design, Transit Gateways, WAFs, and logging/monitoring
• Hands-on experience securing multi-cluster Kubernetes environments including network policies, admission controllers, service mesh, secrets management, and runtime hardening
• Fluency with Infrastructure as Code such as Terraform or CDK and driving code reviews, testing, and automation for infra changes
• Deep understanding of security architecture concepts including Zero Trust, mTLS, identity-based perimeters, least privilege, and cloud hardening best practices
• Demonstrated experience leading incident response as an Incident Commander for major vulnerabilities or breaches
• Proficiency in headcount planning, performance reviews, and mentorship with a clear leadership philosophy
• Excellent communication skills for explaining complex security risks and trade-offs to technical and non-technical stakeholders

Responsibilities

• Lead and develop a team of cloud security engineers
• Own the security posture of AWS and Kubernetes platforms including multi-account AWS Organizations and multi-cluster Kubernetes environments
• Design and implement Zero Trust architectures including identity based perimeters, mTLS, network segmentation, and least-privilege access controls
• Embed security into infrastructure roadmaps, CI/CD pipelines, and service architectures
• Establish and scale infrastructure as code and policy as code practices to build automated guardrails
• Act as Incident Commander for high-severity security incidents and coordinate technical response and post-incident reviews
• Own the security engineering roadmap for cloud and container security
• Collaborate with Compliance, Risk, and Legal to maintain frameworks like SOC2 and ISO and support customer and regulator inquiries
• Partner with leadership on headcount planning, hiring, and organizational design
• Champion security through education, documentation, and cross-team collaboration

Benefits

• Equity
• Bonus